This project aims to improve and to collect the existent information about the backend security. The project is composed by three sections (security development, security hardening and security testing). The aim is to define the guidelines for the companies and IT professionals working in the security field into processes development and back-end components management/testing in the enterprise architecture.

Objectives

The aim of this OWASP project is to create a new guide that could allow developers, administrators and testers to comprehend any parts of the security process about back-end components that directly communicate with the web applications as well as databases, ldaps, payment gateway, and much more.

Join the project

To reach this purpose our community needs more Information Technology security professionals as possible to create a new point of reference for the entire OWASP community.
Although these information are briefly discussed in the others OWASP projects the community would like to collect those already existing information and creating new sections related to the not mentioned back-end components.